This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json) Hash identifier: NRJKW2Lp+imLJ9Vy0dhqlkmj5KSswYcfbiNfGhoAqVk= Subject key identifier: 1F:E0:E6:FC:D1:4B:3A:94:92:F5:A9:B0:5C:22:AF:A3:3C:35:3B:0B Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab Certificate serial: 019B4C5EFA45A36FDE5C7DF87843C03BC27C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft Manifest number: 1796 Signing time: Tue 23 Dec 2025 18:00:51 +0000 Manifest this update: Tue 23 Dec 2025 18:00:51 +0000 Manifest next update: Wed 24 Dec 2025 18:00:51 +0000 Files and hashes: 1: 0CdqlW01ACbv3EQD2O6eNsK9tUw.asa (hash: 9WhwZoBfEGd5k4zvC4ZA/vr5vp3EXDon/OkKYutAIU0=) 2: gFSAApK2GHEW9co-hPvID0_Xbj0.roa (hash: 4lamTHM9SOHzvbwgysIOqInF+Jmi38B32pNkhrQEyFY=) 3: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: AT14HCOR1NrjZvCC0iYXGRl9qFJlm/W5aV35mmuv7Ac=) 4: w6qd6pimXzyzbq_lL6bL0qIFcDY.roa (hash: GP3E0Fs4zdkA4yRQSv2WM00GvN6yRlAiiaArkHkviSI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4c:5e:fa:45:a3:6f:de:5c:7d:f8:78:43:c0:3b:c2:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab Validity Not Before: Dec 23 18:00:51 2025 GMT Not After : Dec 24 18:00:51 2025 GMT Subject: CN=1fe0e6fcd14b3a9492f5a9b05c22afa33c353b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:97:8e:8b:dd:3a:58:e3:07:00:58:15:36:9d: 2a:a4:9e:c5:e3:0a:03:7c:c4:16:5f:26:60:54:31: ef:4f:b0:19:e7:76:c9:07:a0:69:b1:e2:6e:5b:ff: 09:bb:af:0e:04:4a:f1:23:a0:b0:5e:a8:3c:cd:a3: 85:08:ba:86:66:0f:68:43:cb:b5:f7:e0:e2:e4:d2: fa:0d:75:2f:2b:58:99:da:aa:e0:9e:4b:ac:e9:ad: 91:6f:56:a0:6b:b9:3b:fc:42:ba:f4:f8:36:82:60: 33:fa:70:78:f9:42:36:fb:46:23:e0:2a:ee:67:c2: 90:26:ca:73:5e:23:0f:24:2d:ad:42:03:56:d1:bb: 35:34:ef:e2:33:aa:21:8b:4f:6b:23:10:93:ef:ab: ea:a7:43:42:52:44:5b:28:97:70:14:c0:8d:49:35: f0:91:0d:7d:2c:bc:7c:69:0e:5b:ac:37:4c:16:0a: 35:c9:77:bc:d8:30:b6:d1:bf:fc:59:34:33:21:3e: fd:26:64:ca:fe:2d:89:27:17:28:90:af:01:5c:b5: 1c:d6:e8:17:f0:fe:a6:a5:ec:89:ac:38:49:19:38: 9d:87:cf:87:ed:cb:8b:82:00:be:1f:c7:03:59:cf: ae:21:d1:3d:96:f2:94:1e:24:ee:ad:dd:f4:e5:40: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E0:E6:FC:D1:4B:3A:94:92:F5:A9:B0:5C:22:AF:A3:3C:35:3B:0B X509v3 Authority Key Identifier: keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:7f:c3:31:68:9f:a2:9d:2d:38:bf:39:91:cd:49:35:f9:a9: 40:df:4d:fd:a7:e0:39:e1:d6:f7:d9:6c:99:07:81:1f:d6:19: 31:36:a7:77:01:fe:e1:94:eb:68:3b:c8:7c:b6:c7:8d:e7:f2: a2:ff:e2:df:1a:f5:ba:53:86:68:1e:69:ef:74:ef:58:8c:21: a1:2b:e0:33:83:20:cf:38:7a:7f:f0:c7:81:e4:e3:2c:9b:8c: 67:70:36:0b:31:fc:71:78:3f:07:8b:ee:9d:fe:b9:55:69:c6: 4d:57:07:79:90:c8:fc:ea:bb:53:25:4d:20:de:ed:d5:34:da: 82:a3:0d:d3:53:bb:3e:d2:a0:aa:26:46:d4:36:c8:6d:02:38: 28:8f:e5:a0:2b:02:bb:05:dd:57:4b:ba:26:d2:1b:47:26:c1: 2a:e1:0a:f9:27:de:38:85:f8:71:c0:66:a6:4e:a2:eb:78:75: 17:c7:8a:ca:f0:58:87:e2:b1:20:c0:7c:5f:6e:0e:d1:75:73: 2e:61:2b:43:fc:b8:6b:ad:a2:df:12:9b:d9:3d:e6:9b:9c:90: 89:03:51:66:b5:61:2b:03:69:a2:8a:de:59:ee:a5:74:dd:23: f3:80:8a:37:80:5d:5e:1b:ce:2b:3a:72:44:bb:6a:e0:f4:34: aa:4a:f7:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtMXvpFo2/eXH34eEPAO8J8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZGJjNzE1NmE0ZWU3YzY3ZDllNjg0NzY3YTJmNGJhZjhh MzViYWIwHhcNMjUxMjIzMTgwMDUxWhcNMjUxMjI0MTgwMDUxWjAzMTEwLwYDVQQD EygxZmUwZTZmY2QxNGIzYTk0OTJmNWE5YjA1YzIyYWZhMzNjMzUzYjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZeOi906WOMHAFgVNp0qpJ7F4woD fMQWXyZgVDHvT7AZ53bJB6BpseJuW/8Ju68OBErxI6CwXqg8zaOFCLqGZg9oQ8u1 9+Di5NL6DXUvK1iZ2qrgnkus6a2Rb1aga7k7/EK69Pg2gmAz+nB4+UI2+0Yj4Cru Z8KQJspzXiMPJC2tQgNW0bs1NO/iM6ohi09rIxCT76vqp0NCUkRbKJdwFMCNSTXw kQ19LLx8aQ5brDdMFgo1yXe82DC20b/8WTQzIT79JmTK/i2JJxcokK8BXLUc1ugX 8P6mpeyJrDhJGTidh8+H7cuLggC+H8cDWc+uIdE9lvKUHiTurd305UB8FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB/g5vzRSzqUkvWpsFwir6M8NTsLMB8GA1UdIwQY MBaAFInbxxVqTufGfZ5oR2ei9Lr4o1urMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81YTlhOTktNDNjMi00Y2M4LWEzN2It NDk1MDFhNzY5NGM0LzEvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy81YTlhOTktNDNjMi00Y2M4LWEzN2ItNDk1MDFhNzY5NGM0 LzEvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZX/DMWif op0tOL85kc1JNfmpQN9N/afgOeHW99lsmQeBH9YZMTandwH+4ZTraDvIfLbHjefy ov/i3xr1ulOGaB5p73TvWIwhoSvgM4Mgzzh6f/DHgeTjLJuMZ3A2CzH8cXg/B4vu nf65VWnGTVcHeZDI/Oq7UyVNIN7t1TTagqMN01O7PtKgqiZG1DbIbQI4KI/loCsC uwXdV0u6JtIbRybBKuEK+SfeOIX4ccBmpk6i63h1F8eKyvBYh+KxIMB8X24O0XVz LmErQ/y4a62i3xKb2T3mm5yQiQNRZrVhKwNpooreWe6ldN0j84CKN4BdXhvOKzpy RLtq4PQ0qkr3FA== -----END CERTIFICATE-----Generated at Tue Dec 23 22:24:50 2025 by rpki-client